Route Origin Authorization

$ rpki-client -vvf rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/trT4-AsG5XpTRw0_RGRyrNmYlvY.roa
File:                     trT4-AsG5XpTRw0_RGRyrNmYlvY.roa (raw, json)
Hash identifier:          68bbxJPtCK3vmNYxK8HStBYpP97p02JWBjF+U5akVSo=
Subject key identifier:   B6:B4:F8:F8:0B:06:E5:7A:53:47:0D:3F:44:64:72:AC:D9:98:96:F6
Certificate issuer:       /CN=0C78961642A04BE132708DB193D7BA916B2B67CB
Certificate serial:       079D
Authority key identifier: 0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB
Authority info access:    rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer
Subject info access:      rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/trT4-AsG5XpTRw0_RGRyrNmYlvY.roa
Signing time:             Tue 29 Sep 2020 10:02:59 +0000
ROA not before:           Tue 29 Sep 2020 10:02:59 +0000
ROA not after:            Wed 29 Sep 2021 09:51:23 +0000
asID:                     38851
IP address blocks:        103.234.76.0/22 maxlen: 24

Validation:               Failed, certificate has expired

Certificate:
    Data:
        Version: 3 (0x2)
        Serial Number: 1949 (0x79d)
    Signature Algorithm: sha256WithRSAEncryption
        Issuer: CN=0C78961642A04BE132708DB193D7BA916B2B67CB
        Validity
            Not Before: Sep 29 10:02:59 2020 GMT
            Not After : Sep 29 09:51:23 2021 GMT
        Subject: CN=B6B4F8F80B06E57A53470D3F446472ACD99896F6
        Subject Public Key Info:
            Public Key Algorithm: rsaEncryption
                RSA Public-Key: (2048 bit)
                Modulus:
                    00:e7:89:5b:27:c1:90:c2:f6:44:4b:6d:63:2e:a0:
                    89:8f:78:cb:1b:45:4d:bd:3e:31:b4:4f:d3:0a:4e:
                    f5:95:87:f4:d5:b8:c3:06:f0:75:d6:2d:da:cc:d3:
                    58:16:f5:c6:37:19:21:95:b6:b3:33:a1:30:c5:53:
                    35:d9:cd:d0:4b:64:5f:57:fb:7b:9f:e5:67:1c:90:
                    06:61:36:14:eb:9b:b0:51:30:74:36:81:ce:22:6e:
                    b7:ad:6c:ea:5f:5d:37:99:3b:1d:3b:54:f4:1b:d9:
                    17:b6:c0:b8:b7:7a:a6:b4:6e:5c:29:21:fd:af:18:
                    95:77:a9:17:e1:06:8a:37:bf:45:2d:9d:2e:a5:de:
                    d9:78:f8:bd:55:fc:f8:b8:6f:ca:36:e5:d1:46:9d:
                    f5:75:57:51:57:f2:3e:f4:10:6d:81:a1:d3:85:61:
                    2e:e7:18:79:1e:56:2d:cd:e6:21:61:22:85:b2:34:
                    4c:f5:b9:c6:6b:50:64:27:93:a6:8c:0c:18:26:88:
                    40:ce:14:05:89:cc:b2:97:d2:48:cf:64:2b:a0:05:
                    2c:ff:d1:e3:1a:a6:48:00:5f:ba:33:0a:3b:b2:b4:
                    c7:32:44:f0:69:38:41:b4:24:d7:92:0f:21:69:a2:
                    ab:7d:95:26:d0:2e:b5:36:d2:84:55:2a:4f:a5:af:
                    95:ab
                Exponent: 65537 (0x10001)
        X509v3 extensions:
            X509v3 Subject Key Identifier:
                B6:B4:F8:F8:0B:06:E5:7A:53:47:0D:3F:44:64:72:AC:D9:98:96:F6
            X509v3 Authority Key Identifier:
                keyid:0C:78:96:16:42:A0:4B:E1:32:70:8D:B1:93:D7:BA:91:6B:2B:67:CB

            X509v3 Certificate Policies: critical
                Policy: ipAddr-asNumber

            X509v3 CRL Distribution Points:

                Full Name:
                  URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/DHiWFkKgS-EycI2xk9e6kWsrZ8s.crl

            Authority Information Access:
                CA Issuers - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DHiWFkKgS-EycI2xk9e6kWsrZ8s.cer

            X509v3 Key Usage: critical
                Digital Signature
            Subject Information Access:
                Signed Object - URI:rsync://rpkica.twnic.tw/rpki/TWNICCA/DONGFONG/trT4-AsG5XpTRw0_RGRyrNmYlvY.roa
                RPKI Notify - URI:https://rrdp.twnic.tw/rrdp/notify.xml

            sbgp-ipAddrBlock: critical
                IPv4:
                  103.234.76.0/22

    Signature Algorithm: sha256WithRSAEncryption
         3e:60:3d:3b:07:9e:03:24:3c:ab:16:eb:ab:c2:54:47:4d:c8:
         09:a7:8d:dc:98:20:30:3f:91:63:02:8a:30:a5:74:6f:6e:86:
         41:e3:02:1a:93:30:94:0d:f5:35:7f:4e:92:31:fd:98:af:ff:
         24:80:38:cd:66:e1:8b:70:ed:81:d7:aa:bf:2e:75:71:e7:a3:
         cc:54:19:83:28:1e:1d:d0:cc:50:60:2b:ea:84:86:79:64:59:
         35:69:9c:bb:14:39:1f:8b:6e:0c:44:39:1f:d3:dd:32:12:f2:
         88:6c:b9:09:bf:f1:e9:61:23:bf:a9:2c:77:f8:38:e4:63:ad:
         6a:63:a1:92:12:10:31:c1:5f:54:dd:0f:dd:0d:2b:2f:9b:75:
         67:51:63:b4:1b:f6:6d:77:3b:7e:fc:18:52:47:c0:99:fc:0d:
         f1:41:c5:35:cf:85:a1:2b:6c:a3:7d:7c:e7:4b:0c:26:ec:85:
         fe:c1:d1:a1:ab:16:e4:99:db:dd:f9:e1:ca:73:77:c7:f4:20:
         04:fa:df:a6:1b:4d:dd:6a:62:8e:ab:50:3e:bf:de:99:0e:8c:
         b2:4e:46:d5:0e:18:b6:ed:44:fb:35:8d:f5:9b:c0:88:72:2c:
         e8:73:9f:a8:28:1e:73:02:fa:f5:7f:3f:eb:10:77:ef:38:21:
         5a:b2:83:7a
-----BEGIN CERTIFICATE-----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-----END CERTIFICATE-----
Generated at Thu Jun 6 20:00:05 2024 by rpki-client on console-ams.rpki-client.org